Naval Group Probes Major 1TB Data Breach in France
▼ Summary
– France’s Naval Group is investigating a cyberattack after 1TB of allegedly stolen data was leaked on a hacking forum, calling it a “destabilization attempt.”
– The company has filed a complaint to protect client data and is working with external experts to verify the leaked data’s origin and authenticity.
– Naval Group states no IT system breach or operational impact has been detected despite the claims of stolen data.
– A threat actor named ‘Neferpitou’ leaked 13GB of data, including classified military vessel details, and later released the full 1TB dataset after an extortion demand.
– The leaked data may be recycled from a 2022 breach of Thales Group, Naval Group’s minority owner, by the LockBit 3.0 ransomware operation.
France’s leading naval defense contractor, Naval Group, is scrambling to assess a potential cybersecurity incident after a massive 1TB data leak surfaced on hacking forums. The company has dismissed initial claims of a breach but acknowledged the situation as a deliberate attempt to damage its reputation.
Naval Group released an official statement confirming it filed a legal complaint while working alongside cybersecurity specialists and French authorities to verify the leaked data’s authenticity. Despite the alarming claims, the firm insists no unauthorized access to its IT infrastructure has been detected, and daily operations remain unaffected.
The investigation involves cross-checking the leaked files, which reportedly include classified vessel control systems, technical blueprints, simulation data, and internal communications, to determine their origin. Naval Group emphasized that its dedicated cybersecurity team and external experts are working around the clock to resolve the matter swiftly.
The leaked data first appeared on DarkForums, a platform that has gained traction among cybercriminals following the shutdown of BreachForums earlier this year. A hacker using the alias ‘Neferpitou’ initially posted a 13GB sample before releasing the full dataset, demanding a ransom within 72 hours. When no payment was made, the entire cache was made public.
Naval Group, formerly known as DCNS, is a key player in France’s defense sector, specializing in advanced naval technology, including submarines, warships, and digital combat systems. Majority-owned by the French government, the company supplies the French Navy and exports to allied nations like Australia, Brazil, and India.
This incident raises concerns given Naval Group’s ties to Thales Group, which suffered a high-profile ransomware attack in 2022. Some experts speculate the leaked data could be recycled from that breach, though Naval Group has yet to confirm any connection.
For now, the company maintains that its systems remain secure, but the situation underscores the persistent threats facing defense contractors in an era of escalating cyber warfare. Authorities continue to monitor the fallout as investigations progress.
(Source: Bleeping Computer)
